CVE-2004-0554
published 2004-08-06CVE-2004-0554: Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal…
PriorityP413low2.1CVSS 2.0
AVLACLAuNCNINAP
EXPLOIT
EPSS
0.87%
54.1th percentile
Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated using a "crash.c" program.
Affected
38 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| avaya | converged_communications_server | — | — |
| avaya | modular_messaging_message_storage_server | — | — |
| avaya | s8300 | — | — |
| avaya | s8300 | — | — |
| avaya | s8500 | — | — |
| avaya | s8500 | — | — |
| avaya | s8700 | — | — |
| avaya | s8700 | — | — |
| conectiva | linux | — | — |
| conectiva | linux | — | — |
| gentoo | linux | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
CVSS provenance
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:N/I:N/A:P
vendor_redhat2.1LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2004-06-09·CVSS 2.1
CVE-2004-0554 [LOW] security flaw
security flaw
Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated using a "crash.c" program.
GHSA
GHSA-7hp5-737x-3jmh: Linux kernel 2
ghsa_unreviewed·2022-04-29
CVE-2004-0554 [LOW] GHSA-7hp5-737x-3jmh: Linux kernel 2
Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated using a "crash.c" program.
No detection rules found.
Bugzilla
CVE-2004-0554 security flaw
bugzilla·2018-08-16·CVSS 2.1
CVE-2004-0554 [LOW] CVE-2004-0554 security flaw
CVE-2004-0554 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated using a "crash.c" program.
Bugzilla
CAN-2004-0554 local user can get the kernel to hang
bugzilla·2004-06-15
[MEDIUM] CAN-2004-0554 local user can get the kernel to hang
CAN-2004-0554 local user can get the kernel to hang
Last week a flaw was published in the Linux kernel. The issue affects
Linux kernel 2.4 and 2.6 for x86 and allows local users to cause a
denial of service (system crash) with a certain sequence of fsave and
frstor instructions. Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0554 to this issue.
Although this issue is reported as affecting 2.4.2x the flawed code
exists in other 2.4 release too, so this bug is for tracking the fix
for Red Hat Enterprise Linux 2.1
Discussion:
An errata has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000845http://gcc.gnu.org/bugzilla/show_bug.cgi?id=15905http://linuxreviews.org/news/2004-06-11_kernel_crash/index.htmlhttp://lwn.net/Articles/91155/http://marc.info/?l=bugtraq&m=108786114032681&w=2http://marc.info/?l=bugtraq&m=108793699910896&w=2http://marc.info/?l=linux-kernel&m=108681568931323&w=2http://secunia.com/advisories/20162http://secunia.com/advisories/20163http://secunia.com/advisories/20202http://secunia.com/advisories/20338http://security.gentoo.org/glsa/glsa-200407-02.xmlhttp://www.debian.org/security/2006/dsa-1067http://www.debian.org/security/2006/dsa-1069http://www.debian.org/security/2006/dsa-1070http://www.debian.org/security/2006/dsa-1082http://www.kb.cert.org/vuls/id/973654http://www.mandriva.com/security/advisories?name=MDKSA-2004:062http://www.novell.com/linux/security/advisories/2004_17_kernel.htmlhttp://www.redhat.com/support/errata/RHSA-2004-255.htmlhttp://www.redhat.com/support/errata/RHSA-2004-260.htmlhttp://www.securityfocus.com/bid/10538http://www.trustix.net/errata/2004/0034/https://exchange.xforce.ibmcloud.com/vulnerabilities/16412https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2915https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9426http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000845http://gcc.gnu.org/bugzilla/show_bug.cgi?id=15905http://linuxreviews.org/news/2004-06-11_kernel_crash/index.htmlhttp://lwn.net/Articles/91155/http://marc.info/?l=bugtraq&m=108786114032681&w=2http://marc.info/?l=bugtraq&m=108793699910896&w=2http://marc.info/?l=linux-kernel&m=108681568931323&w=2http://secunia.com/advisories/20162http://secunia.com/advisories/20163http://secunia.com/advisories/20202http://secunia.com/advisories/20338http://security.gentoo.org/glsa/glsa-200407-02.xmlhttp://www.debian.org/security/2006/dsa-1067http://www.debian.org/security/2006/dsa-1069http://www.debian.org/security/2006/dsa-1070http://www.debian.org/security/2006/dsa-1082http://www.kb.cert.org/vuls/id/973654http://www.mandriva.com/security/advisories?name=MDKSA-2004:062http://www.novell.com/linux/security/advisories/2004_17_kernel.htmlhttp://www.redhat.com/support/errata/RHSA-2004-255.htmlhttp://www.redhat.com/support/errata/RHSA-2004-260.htmlhttp://www.securityfocus.com/bid/10538http://www.trustix.net/errata/2004/0034/https://exchange.xforce.ibmcloud.com/vulnerabilities/16412https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2915https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9426
2004-08-06
Published